Researchers in Europe have discovered a way to read the contents of encrypted emails sent with iOS and macOS devices. The so-called Efail exploit is significant enough that the Electronic Frontier Foundation calls it an “immediate risk.”
Apple is certainly working on a patches for all its devices, but there are ways to protect your laptop, phone and tablet now.
Apple fans and enthusiastic gadget reviewers will ultimately remember 2017 as the year of a reinvented iPhone. But as the year draws to an end, Apple marketing chief Phil Schiller has a few other things on his mind, such as delays in releasing the company’s first smart speaker and a “bad week” of software bugs and security holes.
Sloppy coding in some popular iOS games allows hackers to give themselves and others thousands of dollars’ worth of in-app purchases for free.
The hole was discovered by developers at DigiDNA, creator of a backup tool called iMazing that allows iPhone and iPad users to access their devices’ hidden file systems. The developers found that the app backup/restore feature in iMazing 1.3 exposes weaknesses in the way games like Angry Birds 2 and Tetris Free handle in-app purchases.
To demonstrate how easy it is to hack in-app purchases using this method, the DigiDNA team tweaked Angry Birds 2 to start the game with 999,999,999 gems — the equivalent of $10,000 of in-game credits.